Skip to content

Releases: apollographql/federation

@apollo/subgraph@2.9.0

27 Aug 18:14
@github-actions github-actions
@apollo/subgraph@2.9.0
351f80c
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.
Compare
Choose a tag to compare
@apollo/subgraph@2.9.0

Patch Changes

Assets 2
Loading

@apollo/query-planner@2.9.0

27 Aug 18:14
@github-actions github-actions
@apollo/query-planner@2.9.0
351f80c
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.
Compare
Choose a tag to compare
@apollo/query-planner@2.9.0

Patch Changes

Assets 2
Loading

@apollo/query-graphs@2.9.0

27 Aug 18:14
@github-actions github-actions
@apollo/query-graphs@2.9.0
351f80c
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.
Compare
Choose a tag to compare
@apollo/query-graphs@2.9.0

Patch Changes

Assets 2
Loading

@apollo/gateway@2.9.0

27 Aug 18:14
@github-actions github-actions
@apollo/gateway@2.9.0
351f80c
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.
Compare
Choose a tag to compare
@apollo/gateway@2.9.0

Patch Changes

Assets 2
Loading

@apollo/federation-internals@2.9.0

27 Aug 18:14
@github-actions github-actions
@apollo/federation-internals@2.9.0
351f80c
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.
Compare
Choose a tag to compare
@apollo/federation-internals@2.9.0

Minor Changes

  • Implements two new directives for defining custom costs for demand control. The @cost directive allows setting a custom weight to a particular field in the graph, overriding the default cost calculation. The @listSize directive gives the cost calculator information about how to estimate the size of lists returned by subgraphs. This can either be a static size or a value derived from input arguments, such as paging parameters. (#3074)

Patch Changes

  • Reduce memory overhead during satisfiability checking when there are many options. (#3109)

  • Fix issue where variable was not passed into subgraph when embedded in a fragment (#3119)

Assets 2
Loading

@apollo/composition@2.9.0

27 Aug 18:14
@github-actions github-actions
@apollo/composition@2.9.0
351f80c
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.
Compare
Choose a tag to compare
@apollo/composition@2.9.0

Minor Changes

  • Implements two new directives for defining custom costs for demand control. The @cost directive allows setting a custom weight to a particular field in the graph, overriding the default cost calculation. The @listSize directive gives the cost calculator information about how to estimate the size of lists returned by subgraphs. This can either be a static size or a value derived from input arguments, such as paging parameters. (#3074)

Patch Changes

Assets 2
Loading

@apollo/subgraph@2.8.5

26 Aug 23:46
@github-actions github-actions
@apollo/subgraph@2.8.5
f9b5f65
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.
Compare
Choose a tag to compare
@apollo/subgraph@2.8.5

Patch Changes

  • Updated dependencies []:
    • @apollo/federation-internals@2.8.5
Assets 2
Loading

@apollo/query-planner@2.8.5

26 Aug 23:46
@github-actions github-actions
@apollo/query-planner@2.8.5
f9b5f65
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.
Compare
Choose a tag to compare
@apollo/query-planner@2.8.5

🔒 Security

CVE-2024-43414: Prevent uncontrolled recursion for complex queries

Correct a bug where complex queries can cause uncontrolled recursion due to failure to reduce the number of possible query plans (classified as CWE-674). (#3128)

This weakness impacts all v2 versions of @apollo/query-planner prior to this release. See the associated Github Advisory, GHSA-fmj9-77q8-g6c4, for more information.

  • Updated dependencies []:
    • @apollo/federation-internals@2.8.5
    • @apollo/query-graphs@2.8.5
Assets 2
Loading

@apollo/query-graphs@2.8.5

26 Aug 23:45
@github-actions github-actions
@apollo/query-graphs@2.8.5
f9b5f65
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.
Compare
Choose a tag to compare
@apollo/query-graphs@2.8.5

Patch Changes

  • Updated dependencies []:
    • @apollo/federation-internals@2.8.5
Assets 2
Loading

@apollo/gateway@2.8.5

26 Aug 23:45
@github-actions github-actions
@apollo/gateway@2.8.5
f9b5f65
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.
Compare
Choose a tag to compare
@apollo/gateway@2.8.5

🔒 Security

CVE-2024-43414: Prevent uncontrolled recursion for complex queries

Correct a bug where complex queries can cause uncontrolled recursion due to failure to reduce the number of possible query plans (classified as CWE-674). (#3128)

This weakness impacts all v2 versions of @apollo/gateway prior to this release. See the associated Github Advisory, GHSA-fmj9-77q8-g6c4, for more information.

Assets 2
Loading